Admin groups - right permissions assignment

I'm looking to configure the owner / admin rights from ActiveDirectory groups, the basic user auth is ok, but the user don't get rights.

My docker-compose.yml

     AUTH_LDAP_USERNAME_ATTRIBUTE: sAMAccountName
     AUTH_LDAP_USER_MAIL_ATTRIBUTE: mail
     AUTH_LDAP_SEARCH_SCOPE: sub
     AUTH_LDAP_GROUP_CLASS: groupOfUniqueNames
     AUTH_LDAP_GROUP_MEMBER_ATTRIBUTE: member
     AUTH_LDAP_GROUP_MEMBER_USER_ATTRIBUTE: distinguishedName
     AUTH_LDAP_OWNER_GROUP: Homarr_owners
     AUTH_LDAP_ADMIN_GROUP: Homarr_admins

     AUTH_LDAP_USERNAME_ATTRIBUTE: sAMAccountName
     AUTH_LDAP_USER_MAIL_ATTRIBUTE: mail
     AUTH_LDAP_SEARCH_SCOPE: sub
     AUTH_LDAP_GROUP_CLASS: groupOfUniqueNames
     AUTH_LDAP_GROUP_MEMBER_ATTRIBUTE: member
     AUTH_LDAP_GROUP_MEMBER_USER_ATTRIBUTE: distinguishedName
     AUTH_LDAP_OWNER_GROUP: Homarr_owners
     AUTH_LDAP_ADMIN_GROUP: Homarr_admins

Thanks for your help !

Solution

okay, i've found my mistake i think.

No permissions have profiles predefined with the value inside the docker-compose.yml
AUTH_LDAP_OWNER_ADMINS
AUTH_LDAP_OWNER_OWNER
AUTH_LDAP_OWNER_USERS

I was thinking groups are created with a predefined permissions profiles and sync from ldap using values set into the docker-compose.yml,

To make ldap rights functional, it's necessary to manually create the groups and add the rights with the default admin account.

Jump to solution

Admin groups - right permissions assignment

Similar Threads